$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: ojLuoTys3wf9rOXkaHrmAiztNLZGyqFYQSWaOdPQUO0= Subject key identifier: B8:32:4C:BB:36:92:A5:F3:20:EF:74:55:DF:30:0D:B2:26:A7:DA:31 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2CC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2C15 Signing time: Sun 01 Mar 2026 23:20:17 +0000 Manifest this update: Sun 01 Mar 2026 23:20:15 +0000 Manifest next update: Sun 08 Mar 2026 23:20:15 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: 4HbJY8K8apPpn4xY0DV2pmMPAof4DlvHPgYyEMRJSrM=) 2: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: 7xfAOvY/afimILYTR9MKcTXThQYmTzbgBUbOIw10xYo=) 3: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: te6K7h74NKd0mHdVkf229ZoBYjiL4niibZWuwJlhYHM=) 4: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: p1Xz4NfMi7vba2dX5mep6XS38eseQmptesScKzYLsfY=) 5: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: vy8OizIusjo0DOpKES3kAjShvdwNIST8mDHt7RP2/Rw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11458 (0x2cc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Mar 1 23:20:15 2026 GMT Not After : Mar 8 23:20:15 2026 GMT Subject: CN=69a4c9b1-940d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:80:8f:72:ce:03:a7:0a:8d:ff:8f:c9:ab:f6: 35:24:42:72:87:01:8c:f7:6e:53:3c:cd:89:dc:99: 16:e6:7d:05:5f:6a:31:c5:f4:59:65:8e:aa:24:1e: 4c:59:e1:6c:0e:85:e4:6f:24:6f:f6:15:fd:ed:63: 3c:90:f1:68:da:e1:34:e1:c0:48:0a:bc:12:ec:e9: c1:55:08:6a:68:2b:7a:9d:37:d8:15:c2:ad:5a:8a: 1d:bc:ea:e4:0a:cb:3e:fd:3b:56:11:95:e2:65:d6: 7f:e3:c9:0b:64:9b:bc:07:d1:aa:39:e5:58:b7:b7: 15:db:4e:f7:25:a3:04:d2:8b:ae:fd:36:67:a5:a5: ec:19:94:fd:d2:ce:5f:1b:8f:e7:ab:2b:ab:eb:64: 9c:6a:f8:a0:1c:ae:0c:ef:02:3e:b5:a8:8d:73:6f: 93:69:a0:7c:14:27:1b:de:2e:f0:97:38:02:a9:6a: fe:4b:7f:cc:89:45:cd:1c:8c:2f:75:9f:da:d5:3d: bf:d3:b9:6f:4f:e7:68:ff:5e:02:c4:c8:8a:f6:b2: 11:5e:28:c2:05:29:02:42:50:fe:bd:41:67:40:ca: 27:6d:2a:1b:c8:1b:a8:de:7b:14:0c:00:7e:b2:5b: 2f:45:3d:a0:25:d0:52:b6:89:f2:15:73:fe:01:27: dc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:32:4C:BB:36:92:A5:F3:20:EF:74:55:DF:30:0D:B2:26:A7:DA:31 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:12:e7:d1:64:66:1d:56:2b:c5:18:a0:e5:67:d8:b5:6d:ff: 72:24:59:96:bd:38:18:0e:9d:4b:e3:18:93:c4:88:b8:b1:6e: e2:fa:52:f6:37:f6:8c:f5:20:58:b4:d1:bb:e3:45:6e:04:13: 7b:a6:4b:28:4d:7c:a2:b7:8e:dd:a2:60:39:47:fb:6c:6d:01: cf:e5:73:72:0f:ae:30:7b:1e:d4:0c:32:9f:c6:cf:bd:5f:a2: 51:e2:59:d8:11:ee:03:d4:65:ca:23:0e:ac:d0:27:1b:d6:43: e4:87:d9:5c:cc:43:80:11:8d:f9:95:12:df:ab:22:6d:6e:40: 2d:bc:3a:0f:78:ad:7a:1a:52:93:00:5d:ad:f7:5d:fa:79:5e: 61:3e:d0:ef:68:53:6f:16:90:9c:ef:e9:e6:70:83:5c:61:01: 56:35:76:25:c4:8a:65:cf:ea:75:68:84:14:6f:fa:6b:0f:a2: ed:a1:18:09:17:ee:de:70:de:f5:23:ad:e9:fb:d3:95:7d:66: 19:4f:cf:ef:c9:e1:4f:09:6d:4f:d4:fb:a3:a7:27:89:34:c4: 6c:f2:14:1b:d1:9d:b5:b2:18:1f:ef:b0:93:01:75:88:07:eb: 0a:07:4e:6c:2f:9d:a6:3b:dc:28:b9:a9:38:ce:63:d4:8d:a0: 51:e7:4e:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjYwMzAxMjMyMDE1WhcNMjYwMzA4MjMyMDE1WjAYMRYwFAYD VQQDEw02OWE0YzliMS05NDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoCPcs4DpwqN/4/Jq/Y1JEJyhwGM925TPM2J3JkW5n0FX2oxxfRZZY6qJB5M WeFsDoXkbyRv9hX97WM8kPFo2uE04cBICrwS7OnBVQhqaCt6nTfYFcKtWoodvOrk Css+/TtWEZXiZdZ/48kLZJu8B9GqOeVYt7cV2073JaME0ouu/TZnpaXsGZT90s5f G4/nqyur62ScavigHK4M7wI+taiNc2+TaaB8FCcb3i7wlzgCqWr+S3/MiUXNHIwv dZ/a1T2/07lvT+do/14CxMiK9rIRXijCBSkCQlD+vUFnQMonbSobyBuo3nsUDAB+ slsvRT2gJdBStonyFXP+ASfcPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLgyTLs2 kqXzIO90Vd8wDbImp9oxMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmRLn0WRmHVYrxRig5WfYtW3/ciRZlr04GA6dS+MYk8SIuLFu4vpS9jf2jPUg WLTRu+NFbgQTe6ZLKE18oreO3aJgOUf7bG0Bz+Vzcg+uMHse1Awyn8bPvV+iUeJZ 2BHuA9RlyiMOrNAnG9ZD5IfZXMxDgBGN+ZUS36sibW5ALbw6D3itehpSkwBdrfdd +nleYT7Q72hTbxaQnO/p5nCDXGEBVjV2JcSKZc/qdWiEFG/6aw+i7aEYCRfu3nDe 9SOt6fvTlX1mGU/P78nhTwltT9T7o6cniTTEbPIUG9GdtbIYH++wkwF1iAfrCgdO bC+dpjvcKLmpOM5j1I2gUedOtw== -----END CERTIFICATE-----Generated at Mon Mar 2 11:44:09 2026 by rpki-client